We are looking for a Trust & Safety Analyst who is passionate about making the internet a safer place for everyone.
As a Trust & Safety Abuse Analyst at DigitalOcean, you will join a dynamic team dedicated to revolutionizing cloud computing and AI. In this role, you will be a key member of DigitalOcean’s security team, reporting to the Senior Manager of Abuse Operations inside a virtual SOC. You will protect DigitalOcean by proactively investigating and actioning cloud abuse and fraud with advanced threat hunting to help maintain a strong reputation. Security Operations Analysts must excel at understanding cloud abuse, fraudulent customer behaviors, and know how to perform technical investigations to confirm violations of our terms of service and acceptable use policies effectively mitigating risks associated with and activities on the DigitalOcean platform.
As a Trust & Safety Abuse Analyst at DigitalOcean, you will be a pivotal member of our security team, reporting to the Senior Manager of Abuse Operations within a virtual SOC. Your primary responsibility will be to safeguard DigitalOcean's reputation by proactively investigating and mitigating cloud abuse and fraud. This dynamic role requires a keen understanding of fraudulent customer behaviors and the ability to conduct advanced threat hunting and technical investigations to confirm violations of our terms of service and acceptable use policies, thereby effectively mitigating risks on the DigitalOcean platform. You will be instrumental in our mission to revolutionize cloud computing and AI.
What You’ll Do:
Developing and owning processes that enforce DigitalOcean's Acceptable Use Policy, which includes incoming reports of spam, denial of service, malware, botnets, phishing, bruteforce, and insecure services.
Evaluating in a hands-on manner cloud abuse, communicating with submitters, and helping customers stay mission focused with DigitalOcean.
Handling customer investigations and triaging corporate alerts, in a customer-facing and transparent manner, to minimize the impact of bad actors on the internet.
Analyzing network traffic for compromised systems, negating denial of service attacks, and locating resource abuse to maintain clean IP reputation.
Locating trends in abuse, communicating with leadership to apprise the extent of issues, and advocating for appropriate product changes to prevent future occurrences.
Designing and executing department-wide projects that improve the efficiency and quality of work, while reducing abuse on the platform.
Investigating, identifying and mitigating cloud abuse such as DDoS attacks, malware distribution networks, phishing attacks, etc.
Uncovering novel malicious trends of abuse, communicating the significance to leadership, and advocating for improved product protections.
Proactively hunting for threats, purple teaming activities, and working with penetration testers on product abuse research.
Acting as “point of contact” for incident management and customer escalations, as well as providing data support for critical issues.
Building strong relationships with the other technical teams across our engineering and infrastructure functions.
Establishing an understanding of DigitalOcean’s entire production environment, from applications to infrastructure, keeping up-to-date with material changes and future directions.
Coaching and mentoring other skilled security practitioners across application, information, and infrastructure security.
What You’ll Add to DigitalOcean:
3+ years of experience in Trust and Safety, Abuse Operations, Emergency Response, Security Operation Center, or Cloud Security.
Excellent analytical, troubleshooting, and problem-solving skills.
Subject matter expertise in cloud hosting attacks and abuse.
Strong ability to prove technical attacks, validate claims, spot malicious patterns, and assist customers in removing or correcting violations of service policies.
Familiarity with Unix/Linux operating systems and command-line interface.
Creative problem-solving skills, using previous approaches as references rather than strict guidelines.
Intellectual curiosity and self-motivation to perform complex tasks and overcome security obstacles at scale, both reactively and proactively.
Passion for security and the safety of employees, customers, and the internet.
Clear written and verbal communication skills, including technical writing, presenting, coaching, and mentoring.
Ability to provide and receive clear, direct, and constructive feedback for continuous improvement.
Bonus:
Threat intelligence collection and investigation based hunting.
Network or cloud security investigations.
Coding, scripting, or automation skills (Python, Bash, Go, SQL).
Data analysis skills as it relates to relational databases, SQL, logging infrastructures, data visualization tools (e.g: Looker, Grafana, Elastic)
Experience performing troubleshooting, investigations, or alert triage in a hands-on technical capacity.
Familiarity with IP monitoring tools and trust and safety abuse monitoring tools (abuseipdb, netcraft, abusix).
Why You’ll Like Working for DigitalOcean:
We innovate with purpose. You’ll be a part of a cutting-edge technology company with an upward trajectory, who are proud to simplify cloud and AI so builders can spend more time creating software that changes the world. As a member of the team, you will be a Shark who thinks big, bold, and scrappy, like an owner with a bias for action and a powerful sense of responsibility for customers, products, employees, and decisions.
We prioritize career development. At DO, you’ll do the best work of your career. You will work with some of the smartest and most interesting people in the industry. We are a high-performance organization that will always challenge you to think big. Our organizational development team will provide you with resources to ensure you keep growing. We provide employees with reimbursement for relevant conferences, training, and education. All employees have access to LinkedIn Learning's 10,000+ courses to support their continued growth and development.
We care about your well-being. Regardless of your location, we will provide you with a competitive array of benefits to support you from our Employee Assistance Program to Local Employee Meetups to flexible time off policy, to name a few. While the philosophy around our benefits is the same worldwide, specific benefits may vary based on local regulations and preferences.
We reward our employees. The salary range for this position is $84,000 - $105,000 based on market data, relevant years of experience, and skills. You may qualify for a bonus in addition to base salary; bonus amounts are determined based on company and individual performance. We also provide equity compensation to eligible employees, including equity grants upon hire and the option to participate in our Employee Stock Purchase Program.
We value diversity and inclusion. We are an equal-opportunity employer, and recognize that diversity of thought and background builds stronger teams and products to serve our customers. We approach diversity and inclusion seriously and thoughtfully. We do not discriminate on the basis of race, religion, color, ancestry, national origin, caste, sex, sexual orientation, gender, gender identity or expression, age, disability, medical condition, pregnancy, genetic makeup, marital status, or military service.
*This is a remote role.